Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e39382e302f32342d3234203d3e203533313533.roa
File: 3138362e3230392e39382e302f32342d3234203d3e203533313533.roa (raw, json)
Hash identifier: 8p0GUJXFQ8rNl7ZQkoJ+y8XJOpePOrpFeKltIzI9Giw=
Subject key identifier: 02:68:46:02:9C:7B:8F:55:21:F8:B9:C7:CA:95:30:92:EE:8A:57:8F
Certificate issuer: /CN=9536A4A25799142864EDF97B100393D50D163742
Certificate serial: 33E0470D13669BC551DEB3A89AB3FF0395E8C0DD
Authority key identifier: 95:36:A4:A2:57:99:14:28:64:ED:F9:7B:10:03:93:D5:0D:16:37:42
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9536A4A25799142864EDF97B100393D50D163742.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e39382e302f32342d3234203d3e203533313533.roa
Signing time: Fri 24 May 2024 14:19:11 +0000
ROA not before: Fri 24 May 2024 14:14:11 +0000
ROA not after: Fri 23 May 2025 14:19:11 +0000
asID: 53153
IP address blocks: 186.209.98.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e0:47:0d:13:66:9b:c5:51:de:b3:a8:9a:b3:ff:03:95:e8:c0:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9536A4A25799142864EDF97B100393D50D163742
Validity
Not Before: May 24 14:14:11 2024 GMT
Not After : May 23 14:19:11 2025 GMT
Subject: CN=026846029C7B8F5521F8B9C7CA953092EE8A578F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:8c:8c:be:54:6c:7e:9d:be:ba:5c:f3:99:
e2:4d:9c:2c:6d:15:5f:29:36:5a:83:fe:2e:fb:49:
2e:c3:1c:ce:fa:19:86:82:c6:79:eb:c4:e2:82:0e:
83:7f:2f:73:c8:a8:3f:94:57:f9:a5:eb:be:b1:88:
89:69:9b:3e:8c:f7:da:dd:3a:e2:1a:89:ea:92:da:
65:c7:51:a3:8b:a4:4f:2d:65:bf:13:f6:4b:a7:c4:
10:0f:85:01:cc:5a:d6:f1:65:5d:05:7c:f4:3f:d5:
8e:79:82:c7:0f:16:db:68:0c:df:a4:71:f9:16:0d:
9c:d0:6d:27:e3:ab:c2:a5:09:b1:67:5c:c7:ca:e1:
4b:71:a0:a0:a4:6f:ec:b1:7e:8b:f8:2c:97:73:14:
93:cd:2c:86:45:d3:1d:f6:a4:08:d9:77:ca:7a:dd:
89:55:88:25:e1:e3:5c:bc:d4:ff:0d:a2:8f:e2:ec:
0f:61:c3:a9:b2:27:06:57:76:4c:a3:9f:4c:da:ba:
a7:f6:dc:a6:7b:fc:88:ea:2a:0f:5e:d4:69:61:62:
4d:8c:06:e8:1e:bb:f3:ab:f8:a4:24:d3:fa:73:ce:
9f:de:b3:79:18:c0:ef:6c:df:cf:6d:8d:94:12:8a:
ef:aa:ec:81:b5:67:1b:b6:39:20:b6:68:c7:a0:c1:
1f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:68:46:02:9C:7B:8F:55:21:F8:B9:C7:CA:95:30:92:EE:8A:57:8F
X509v3 Authority Key Identifier:
keyid:95:36:A4:A2:57:99:14:28:64:ED:F9:7B:10:03:93:D5:0D:16:37:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/9536A4A25799142864EDF97B100393D50D163742.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9536A4A25799142864EDF97B100393D50D163742.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e39382e302f32342d3234203d3e203533313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.209.98.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:6c:3d:75:b1:b0:ba:57:7b:79:d9:10:8b:ac:26:55:4a:5d:
ca:eb:97:6f:ae:04:50:90:9e:8d:9d:3e:c7:a7:54:64:ea:ff:
ca:c1:d2:10:1b:fa:34:da:fa:49:44:81:55:4f:4f:ed:83:24:
70:56:37:2d:96:f5:db:b4:7a:cc:de:5f:57:a9:db:28:2b:94:
f5:0f:33:5a:30:d5:11:f7:44:8d:24:2f:bc:18:20:95:fc:52:
e8:92:9e:78:50:a4:37:7d:75:4b:93:c7:d0:44:8e:7c:ac:03:
53:2a:f4:70:74:55:7e:57:cf:f2:df:d1:00:64:37:0a:2c:a0:
5c:3d:01:fc:47:1d:6f:02:98:d6:22:69:6e:2a:1c:18:36:9e:
8a:d1:3c:7c:03:9e:c9:1a:f8:55:ac:0c:c2:22:49:83:58:3f:
67:48:38:4a:49:90:30:85:d7:0b:a0:c3:66:1c:63:a2:e6:9d:
63:95:3f:3a:7e:dc:10:26:65:a0:d0:0a:b7:2d:0a:8e:5b:2c:
a5:4f:04:8c:00:38:f1:00:d6:40:f8:07:4e:c0:a5:84:50:8f:
82:f2:8f:9c:26:e2:a1:fa:49:a9:fe:3e:9d:9f:72:b8:4c:c9:
78:b9:49:16:b2:95:25:1a:e6:73:44:5d:ba:eb:5e:c2:f5:fe:
db:d4:9b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 09:04:06 2024 by rpki-client on console-ams.rpki-client.org